Comment 2 for bug 1392013

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package linux - 2.6.32-69.136

---------------
linux (2.6.32-69.136) lucid; urgency=low

  [ Brad Figg ]

  * Release Tracking Bug
    - LP: #1395827

  [ Upstream Kernel Changes ]

  * net: sctp: fix skb_over_panic when receiving malformed ASCONF chunks
    - LP: #1386367
    - CVE-2014-3673
  * net: sctp: fix panic on duplicate ASCONF chunks
    - LP: #1386392
    - CVE-2014-3687
  * net: sctp: fix remote memory pressure from excessive queueing
    - LP: #1386393
    - CVE-2014-3688
  * mac80211: fix fragmentation code, particularly for encryption
    - LP: #1392013
    - CVE-2014-8709
  * ttusb-dec: buffer overflow in ioctl
    - LP: #1395187
    - CVE-2014-8884
  * net: sctp: fix NULL pointer dereference in af->from_addr_param on
    malformed packet
    - LP: #1392820
    - CVE-2014-7841
 -- Brad Figg <email address hidden> Mon, 24 Nov 2014 10:45:44 -0800